OpenLDAP remote DoS: CVE-2011-1081

Bug #742104 reported by Quanah Gibson-Mount on 2011-03-24
258
This bug affects 1 person
Affects Status Importance Assigned to Milestone
openldap (Ubuntu)
Medium
Jamie Strandboge
Hardy
Medium
Jamie Strandboge
Karmic
Medium
Jamie Strandboge
Lucid
Medium
Jamie Strandboge
Maverick
Medium
Jamie Strandboge
Natty
Medium
Jamie Strandboge

Bug Description

It is possible to crash openldap using an unauthenticated modrdn operation. See

http://www.openldap.org/its/index.cgi/?findid=6768

This is fixed by:
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?hideattic=1&r1=text&tr1=1.181&r2=text&tr2=1.182&f=c

You may wish to file a bug with Debian, since I can't find a way to do it that doesn't report some tool to do so, and all my systems are firewalled.

Jamie Strandboge (jdstrand) wrote :

Thank you for using Ubuntu and reporting a bug. Packages are already being prepared to address this vulnerability.

visibility: private → public
Changed in openldap (Ubuntu):
assignee: nobody → Jamie Strandboge (jdstrand)
status: New → In Progress
Jamie Strandboge (jdstrand) wrote :
Changed in openldap (Ubuntu Lucid):
status: New → Fix Released
importance: Undecided → Medium
assignee: nobody → Jamie Strandboge (jdstrand)
Changed in openldap (Ubuntu Maverick):
status: New → Fix Released
importance: Undecided → Medium
assignee: nobody → Jamie Strandboge (jdstrand)
Changed in openldap (Ubuntu Hardy):
status: New → Fix Released
importance: Undecided → Medium
assignee: nobody → Jamie Strandboge (jdstrand)
Changed in openldap (Ubuntu Karmic):
status: New → Fix Released
importance: Undecided → Medium
assignee: nobody → Jamie Strandboge (jdstrand)
Changed in openldap (Ubuntu Natty):
importance: Undecided → Medium
milestone: none → ubuntu-11.04-beta-2
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package openldap - 2.4.23-6ubuntu6

---------------
openldap (2.4.23-6ubuntu6) natty; urgency=low

  * SECURITY UPDATE: fix successful anonymous bind via chain overlay when
    using forwarded authentication failures
    - debian/patches/CVE-2011-1024
    - CVE-2011-1024
  * SECURITY UPDATE: verify password when authenticating to rootdn and using ndb
    backend. Note: Ubuntu is not compiled with --enable-ndb by default
    - debian/patches/CVE-2011-1025
    - CVE-2011-1025
  * SECURITY UPDATE: fix DoS when processing unauthenticated modrdn requests
    and requestDN is empty
    - debian/patches/CVE-2011-1081
    - CVE-2011-1081
    - LP: #742104
 -- Jamie Strandboge <email address hidden> Thu, 07 Apr 2011 11:36:53 -0500

Changed in openldap (Ubuntu Natty):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers